Solved

Exchange 2007 set up using a combination of server.xxx.local and mail.xxx.com - is this normal? If not how can I correct it?

Posted on 2009-04-05
4
337 Views
Last Modified: 2012-05-06
I had an outside consultant come in and help me install Exchange 2007 in our environment. They seem to have used a combination of two different FQDN's to set this up - server.xxx.local and mail.xxx.com. Is this a normal way to set up Exchange 2007?

We had to set up some kind fix to get SSL certificates working correctly since internally it resolves to the .local FQDN. It seems like it would make more sense to have set up Exchange 2007 to only use mail.xxx.com internally AND externally for any name resolution.

For example to access OWA, you go to mail.xxx.com. To set up Outlook Anywhere however you have to use a combination of both server.xxx.local in the Exchange server box and mail.xxx.com in the HTTP box.

From a logical standpoint, I would say he got confused and used two different FQDN's while setting up Exchange 2007. Am I correct, or is this a standard practice way to set up Exchange 2007 and should I leave it alone?
0
Comment
Question by:danielevans83
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 

Author Comment

by:danielevans83
ID: 24072474
In fact it even looks like NDR's from Exchange users return with the server.xxx.local header and ones that use our SMTP service return with a mail.xxx.com header.
0
 
LVL 65

Accepted Solution

by:
Mestha earned 500 total points
ID: 24072553
There is nothing wrong with that setup.
It is fairly common to have domain.local internally. Exchange can cope with that quite happily. Renaming your domain is a pain to do, so all that was done is work with that.

However you shouldn't have had to do anything special with certificates if the certificates had been done correctly. Exchange 2007 requires SAN/UC certificates, which support multiple names, including the internal domains.
So you would have mail.example.com as the common name (where example.com is your public name), then autodiscover.example.com, server (NETBIOS name) and server.example.local (internal FQDN) as alternative/additional names.

If your WINDOWS domain is example.local then you cannot really change a great deal with the way that Exchange works. The only two parts that matter are the FQDN on the Send Connectors and the SSL certificate., Everything else is fine for the .local.
Postmaster messages (NDRs) can be set to go from a specific address, usually postmaster@example.com but that is about it.

As for whether you should leave it alone or not, you don't really have much choice. To change it would be a lot of hassle, for almost no gain other than some vanity settings.

Simon.
0
 

Author Comment

by:danielevans83
ID: 24073036
Mestha,
Thanks for the detailed breakdown, that is really helpful.
Regarding the Exchange 2007 SSL cert, we used a standard one from Godaddy. It was licensing for the public domain so we had to do some messing around to get that to work for internal Outlook clients so it doesn't prompt them every time asking if the cert is okay.
My primary irritation with this is how Outlook Anywhere works. I'd prefer it if I could put in mail.xxx.com for the Exchange server name instead of server.xxx.local. What setting is it that controls what FQDN is used internally for Outlook to connect to it?
0
 
LVL 65

Expert Comment

by:Mestha
ID: 24077767
When it comes to Outlook Anywhere, you cannot change the URL. The server's real internal FQDN will always appear. If you are using Outlook 2007 then Autodiscover will configure Outlook Anywhere for you automatically. If you are using Outlook 2003 then you have to configure manually before you hit next on pure external clients.

A standard SSL certificate would have given you grief - if you switched to a SAN/UC certificate then you would not have had that grief.

Simon.
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
Check out this step-by-step guide for using the newly updated Experts Exchange mobile app—released on May 30.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question